CarbonCopy is a tool which creates a spoofed certificate of any online website and signs an Executable for AV Evasion. Works for both Windows and Linux.

Also Read – DNS-Shell : An Interactive Shell Over DNS Channel

CarbonCopy creates a self-signed certificates which looks like the original certificate, i.e. subject, issuer etc seem to match. But, the certificate is not signed by the specified issuer at all.

This means if a proper validation of the certificate is done no local trust anchor will be found and the certificate will be rejected as untrusted.